www.healthcare.gov
- Centers for Medicare & Medicaid Services -
Issued by GeoTrust SSL CA - G4
About this certificate
This digital certificate with serial number 0a:b4 was issued on by GeoTrust Inc..
With 61 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Centers for Medicare & Medicaid Services
Organization:
Centers for Medicare & Medicaid Services
Organization unit: OIS
Organization unit: OIS
State / Province:
Maryland
Locality: Baltimore
Country: US
Locality: Baltimore
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:b4Serial Number (int): 2740
Serial Number lenght: 12 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: ac:32:ed:5a:c9:e0:de:30:9c:90:58:55:26:63:f6:72:a6:54:5f:e3
Fingerprint (sha1): b1:65:3f:6e:41:7f:d9:c0:11:90:26:23:eb:a3:6d:ac:79:f5:65:10
Fingerprint (sha256): 11:dd:c8:f0:23:46:9a:89:0d:ad:21:b7:42:82:3f:0b:94:74:c3:ca:e8:12:f4:8c:0c:75:46:99:16:ff:b9:ab
Issuing Certificate URL: http://gw.symcb.com/gw.crt
Revocation information
OCSP Server: http://gw.symcd.comCRL Distribution Point: http://gw.symcb.com/gw.crl
Check the revocation status for certificate www.healthcare.gov
61
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.healthcare.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.aws.healthcare.gov
search.stopmedicarefraud.gov
www.stopmedicarefraud.gov
stopmedicarefraud.gov
www.cciio.cms.gov
cciio.cms.gov
partnershippledge.healthcare.gov
hospitalcompare.hhs.gov
www.hospitalcompare.hhs.gov
pcip.gov
www.pcip.gov
errp.gov
www.errp.gov
go.healthcare.gov
maps.cms.gov
monitor.healthcare.gov
wr.healthcare.gov
tmdsmdr.aws.healthcare.gov
tmdsm.aws.healthcare.gov
ahrcvo.cms.gov
ahrc.cms.gov
eap.cms.gov
ratereview.healthcare.gov
openpaymentsdata.cms.gov
nagios.healthcare.gov
billing.healthcare.gov
github.cms.gov
ci.cms.gov
splunk.healthcare.gov
portal.cms.gov
api.finder.healthcare.gov
companyprofile.healthcare.gov
data.healthcare.gov
www.cuidadodesalud.gov
status.healthcare.gov
splunk.cms.gov
signup.healthcare.gov
search.healthcare.gov
reminder.healthcare.gov
prodprime.healthcare.gov
prodprime.cuidadodesalud.gov
marketplace.cms.gov
login.healthcare.gov
localhelp.healthcare.gov
jira.cms.gov
hfpp.cms.gov
finder.healthcare.gov
eidm.cms.gov
downloads.cms.gov
developer.cms.gov
cuidadodesalud.gov
confluence.cms.gov
companyprofiles.healthcare.gov
ayudalocal.cuidadodesalud.gov
assets.healthcare.gov
assets.cms.gov
styleguide.healthcare.gov
hipchat.cms.gov
crowd.cms.gov
www.healthcare.gov
healthcare.gov
search.stopmedicarefraud.gov
www.stopmedicarefraud.gov
stopmedicarefraud.gov
www.cciio.cms.gov
cciio.cms.gov
partnershippledge.healthcare.gov
hospitalcompare.hhs.gov
www.hospitalcompare.hhs.gov
pcip.gov
www.pcip.gov
errp.gov
www.errp.gov
go.healthcare.gov
maps.cms.gov
monitor.healthcare.gov
wr.healthcare.gov
tmdsmdr.aws.healthcare.gov
tmdsm.aws.healthcare.gov
ahrcvo.cms.gov
ahrc.cms.gov
eap.cms.gov
ratereview.healthcare.gov
openpaymentsdata.cms.gov
nagios.healthcare.gov
billing.healthcare.gov
github.cms.gov
ci.cms.gov
splunk.healthcare.gov
portal.cms.gov
api.finder.healthcare.gov
companyprofile.healthcare.gov
data.healthcare.gov
www.cuidadodesalud.gov
status.healthcare.gov
splunk.cms.gov
signup.healthcare.gov
search.healthcare.gov
reminder.healthcare.gov
prodprime.healthcare.gov
prodprime.cuidadodesalud.gov
marketplace.cms.gov
login.healthcare.gov
localhelp.healthcare.gov
jira.cms.gov
hfpp.cms.gov
finder.healthcare.gov
eidm.cms.gov
downloads.cms.gov
developer.cms.gov
cuidadodesalud.gov
confluence.cms.gov
companyprofiles.healthcare.gov
ayudalocal.cuidadodesalud.gov
assets.healthcare.gov
assets.cms.gov
styleguide.healthcare.gov
hipchat.cms.gov
crowd.cms.gov
www.healthcare.gov
healthcare.gov
Other certificates including the domain name healthcare.gov
(limited to 100 certificates)
splunk.aws.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
www.healthcare.gov
test2.healthcare.gov
www2.cms.gov
orig.impl1a.ses.api.healthcare.gov
www.healthcare.gov
pet-elb.imp1b.healthcare.gov
test-t.healthcare.gov
shop.prod.healthcare.gov
www.healthcare.gov
www.healthcare.gov
adobe-ep.healthcare.gov
www2.healthcare.gov
tmdsm.aws.healthcare.gov
www2.cms.gov
www2.cms.gov
app-dc01.prod.healthcare.gov
app-dc01.prod.healthcare.gov
test3.healthcare.gov
www2.healthcare.gov
tmdsmdr.aws.healthcare.gov
net.prod.healthcare.gov
test2.healthcare.gov
api.healthcare.gov
www.healthcare.gov
impl.mcr.dsh.healthcare.gov
search.test.healthcare.gov
www2.cms.gov
www2.cms.gov
test.healthcare.gov
dsrs.api.healthcare.gov
test4.healthcare.gov
test4.healthcare.gov
net-dc01.prod.healthcare.gov
test3.healthcare.gov
prod.pc2-elb.healthcare.gov
vpneast.aws.cms.gov
www.healthcare.gov
test3.healthcare.gov
orig.ses.api.healthcare.gov
www2.cms.gov
www2.cms.gov
test2.healthcare.gov
sls-elb.imp.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
test2.healthcare.gov
search1.healthcare.gov
test.healthcare.gov
api.healthcare.gov
tmdsmdr.aws.healthcare.gov
test3.healthcare.gov
chat.healthcare.gov
nagiosdr.aws.healthcare.gov
test2.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
www2.cms.gov
test3.healthcare.gov
prod-t.healthcare.gov
www2.cms.gov
test2.healthcare.gov
origin-es-app.prod.healthcare.gov
test0.mcr.gw.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
test.healthcare.gov
test.healthcare.gov
b.dev.healthcare.gov
www.healthcare.gov
www2.healthcare.gov
test2.healthcare.gov
mcr.api.healthcare.gov
api-manager-elb.dev.healthcare.gov
www2.cms.gov
imp1b-marketplace-elb.api.healthcare.gov
origin-es-app.prod.healthcare.gov
test2.healthcare.gov
test.healthcare.gov
www2.cms.gov
www2.healthcare.gov
app1a.imp.healthcare.gov
test3.healthcare.gov
test0.shop.healthcare.gov
test2.healthcare.gov
chat.healthcare.gov
api-manager-elb.imp.healthcare.gov
www.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www2.cms.gov
api.healthcare.gov
www2.cms.gov
test2.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
www.healthcare.gov
test2.healthcare.gov
www2.cms.gov
orig.impl1a.ses.api.healthcare.gov
www.healthcare.gov
pet-elb.imp1b.healthcare.gov
test-t.healthcare.gov
shop.prod.healthcare.gov
www.healthcare.gov
www.healthcare.gov
adobe-ep.healthcare.gov
www2.healthcare.gov
tmdsm.aws.healthcare.gov
www2.cms.gov
www2.cms.gov
app-dc01.prod.healthcare.gov
app-dc01.prod.healthcare.gov
test3.healthcare.gov
www2.healthcare.gov
tmdsmdr.aws.healthcare.gov
net.prod.healthcare.gov
test2.healthcare.gov
api.healthcare.gov
www.healthcare.gov
impl.mcr.dsh.healthcare.gov
search.test.healthcare.gov
www2.cms.gov
www2.cms.gov
test.healthcare.gov
dsrs.api.healthcare.gov
test4.healthcare.gov
test4.healthcare.gov
net-dc01.prod.healthcare.gov
test3.healthcare.gov
prod.pc2-elb.healthcare.gov
vpneast.aws.cms.gov
www.healthcare.gov
test3.healthcare.gov
orig.ses.api.healthcare.gov
www2.cms.gov
www2.cms.gov
test2.healthcare.gov
sls-elb.imp.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
test2.healthcare.gov
search1.healthcare.gov
test.healthcare.gov
api.healthcare.gov
tmdsmdr.aws.healthcare.gov
test3.healthcare.gov
chat.healthcare.gov
nagiosdr.aws.healthcare.gov
test2.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
www2.cms.gov
test3.healthcare.gov
prod-t.healthcare.gov
www2.cms.gov
test2.healthcare.gov
origin-es-app.prod.healthcare.gov
test0.mcr.gw.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
test.healthcare.gov
test.healthcare.gov
b.dev.healthcare.gov
www.healthcare.gov
www2.healthcare.gov
test2.healthcare.gov
mcr.api.healthcare.gov
api-manager-elb.dev.healthcare.gov
www2.cms.gov
imp1b-marketplace-elb.api.healthcare.gov
origin-es-app.prod.healthcare.gov
test2.healthcare.gov
test.healthcare.gov
www2.cms.gov
www2.healthcare.gov
app1a.imp.healthcare.gov
test3.healthcare.gov
test0.shop.healthcare.gov
test2.healthcare.gov
chat.healthcare.gov
api-manager-elb.imp.healthcare.gov
www.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www2.cms.gov
api.healthcare.gov
www2.cms.gov
test2.healthcare.gov
test3.healthcare.gov
Certificate
The complete raw certificate details for www.healthcare.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJtjCCCJ6gAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRDELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xHTAbBgNVBAMTFEdlb1RydXN0IFNTTCBD QSAtIEc0MB4XDTE1MDYwMTA2NTEwM1oXDTE2MDYwMzE4MzQyOVowgZIxCzAJBgNV BAYTAlVTMREwDwYDVQQIEwhNYXJ5bGFuZDESMBAGA1UEBxMJQmFsdGltb3JlMTEw LwYDVQQKDChDZW50ZXJzIGZvciBNZWRpY2FyZSAmIE1lZGljYWlkIFNlcnZpY2Vz MQwwCgYDVQQLEwNPSVMxGzAZBgNVBAMTEnd3dy5oZWFsdGhjYXJlLmdvdjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAML2GorFvpw5kuy42wUV5t/g/omK iu3d7wAWLd6ptukPTTysPArbnDJ/lLAefJZR/G2Y9FoeR4lVXkmSw+HRLYA+0GZ7 ziX/Iu7ac1v5/opm/U8o4wsakqsDXVFlFBVrH6PF8hgflaasSfe4FEEdgYKGebcK 41lpSzDGO8M3hgTJPdMy/ikHMTLcB0d5w0KYubrJTNQtFoKpw2t5/RwA7Lqr+pFX PPfhqIgThGdFt32I45K3E22mlgjkMe7pumq4L/4L6WfLJW9ve92KZL7jV9LdEmIh /Hk2m/04DPKYCq6eYO679SQVThnJ9VzBitVuig+RMtMFJYyiooau6AALoO0CAwEA AaOCBmEwggZdMB8GA1UdIwQYMBaAFKwy7VrJ4N4wnJBYVSZj9nKmVF/jMFcGCCsG AQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2d3LnN5bWNkLmNvbTAmBggr BgEFBQcwAoYaaHR0cDovL2d3LnN5bWNiLmNvbS9ndy5jcnQwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCCBRkGA1UdEQSCBRAw ggUMghZ2cG4uYXdzLmhlYWx0aGNhcmUuZ292ghxzZWFyY2guc3RvcG1lZGljYXJl ZnJhdWQuZ292ghl3d3cuc3RvcG1lZGljYXJlZnJhdWQuZ292ghVzdG9wbWVkaWNh cmVmcmF1ZC5nb3aCEXd3dy5jY2lpby5jbXMuZ292gg1jY2lpby5jbXMuZ292giBw YXJ0bmVyc2hpcHBsZWRnZS5oZWFsdGhjYXJlLmdvdoIXaG9zcGl0YWxjb21wYXJl Lmhocy5nb3aCG3d3dy5ob3NwaXRhbGNvbXBhcmUuaGhzLmdvdoIIcGNpcC5nb3aC DHd3dy5wY2lwLmdvdoIIZXJycC5nb3aCDHd3dy5lcnJwLmdvdoIRZ28uaGVhbHRo Y2FyZS5nb3aCDG1hcHMuY21zLmdvdoIWbW9uaXRvci5oZWFsdGhjYXJlLmdvdoIR d3IuaGVhbHRoY2FyZS5nb3aCGnRtZHNtZHIuYXdzLmhlYWx0aGNhcmUuZ292ghh0 bWRzbS5hd3MuaGVhbHRoY2FyZS5nb3aCDmFocmN2by5jbXMuZ292ggxhaHJjLmNt cy5nb3aCC2VhcC5jbXMuZ292ghlyYXRlcmV2aWV3LmhlYWx0aGNhcmUuZ292ghhv cGVucGF5bWVudHNkYXRhLmNtcy5nb3aCFW5hZ2lvcy5oZWFsdGhjYXJlLmdvdoIW YmlsbGluZy5oZWFsdGhjYXJlLmdvdoIOZ2l0aHViLmNtcy5nb3aCCmNpLmNtcy5n b3aCFXNwbHVuay5oZWFsdGhjYXJlLmdvdoIOcG9ydGFsLmNtcy5nb3aCGWFwaS5m aW5kZXIuaGVhbHRoY2FyZS5nb3aCHWNvbXBhbnlwcm9maWxlLmhlYWx0aGNhcmUu Z292ghNkYXRhLmhlYWx0aGNhcmUuZ292ghZ3d3cuY3VpZGFkb2Rlc2FsdWQuZ292 ghVzdGF0dXMuaGVhbHRoY2FyZS5nb3aCDnNwbHVuay5jbXMuZ292ghVzaWdudXAu aGVhbHRoY2FyZS5nb3aCFXNlYXJjaC5oZWFsdGhjYXJlLmdvdoIXcmVtaW5kZXIu aGVhbHRoY2FyZS5nb3aCGHByb2RwcmltZS5oZWFsdGhjYXJlLmdvdoIccHJvZHBy aW1lLmN1aWRhZG9kZXNhbHVkLmdvdoITbWFya2V0cGxhY2UuY21zLmdvdoIUbG9n aW4uaGVhbHRoY2FyZS5nb3aCGGxvY2FsaGVscC5oZWFsdGhjYXJlLmdvdoIMamly YS5jbXMuZ292ggxoZnBwLmNtcy5nb3aCFWZpbmRlci5oZWFsdGhjYXJlLmdvdoIM ZWlkbS5jbXMuZ292ghFkb3dubG9hZHMuY21zLmdvdoIRZGV2ZWxvcGVyLmNtcy5n b3aCEmN1aWRhZG9kZXNhbHVkLmdvdoISY29uZmx1ZW5jZS5jbXMuZ292gh5jb21w YW55cHJvZmlsZXMuaGVhbHRoY2FyZS5nb3aCHWF5dWRhbG9jYWwuY3VpZGFkb2Rl c2FsdWQuZ292ghVhc3NldHMuaGVhbHRoY2FyZS5nb3aCDmFzc2V0cy5jbXMuZ292 ghlzdHlsZWd1aWRlLmhlYWx0aGNhcmUuZ292gg9oaXBjaGF0LmNtcy5nb3aCDWNy b3dkLmNtcy5nb3aCEnd3dy5oZWFsdGhjYXJlLmdvdoIOaGVhbHRoY2FyZS5nb3Yw KwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2d3LnN5bWNiLmNvbS9ndy5jcmwwDAYD VR0TAQH/BAIwADBaBgNVHSAEUzBRME8GCmCGSAGG+EUBBzYwQTA/BggrBgEFBQcC ARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5 L2xlZ2FsMA0GCSqGSIb3DQEBCwUAA4IBAQB9UY/t9dJ1TWRfzU9FReJiuxFYzFMn ajQBj76kjgFohYeFEuSwHdULpRi0PZsyVpSKwrIkz+MB3cw/MfVEW/W+OGF71w2z xoV/Vsd2SeK46kngkkWs/eyDzBocWwLB/kb1nUBGsXknC7T+x9mpRWzH++J7pffG +MOShoP9XX0rsYPiswA/NfG6wm0wupAQMSTlaikMzYcNKJjEOXLw4WWX6nijYoPD JbPWBB5dgU6zxz7LtBYesr2CffO3y2xE/6JpL2/bXVHnjsdDndTvMX5JvHUeGQe3 VdPBvXUO23h9oaUFEzanHq3ReBseF/QmBMNZFs/9xnvwwUTzF6YMkgvq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvYaisW+nDmS7LjbBRXm 3+D+iYqK7d3vABYt3qm26Q9NPKw8CtucMn+UsB58llH8bZj0Wh5HiVVeSZLD4dEt gD7QZnvOJf8i7tpzW/n+imb9TyjjCxqSqwNdUWUUFWsfo8XyGB+VpqxJ97gUQR2B goZ5twrjWWlLMMY7wzeGBMk90zL+KQcxMtwHR3nDQpi5uslM1C0WgqnDa3n9HADs uqv6kVc89+GoiBOEZ0W3fYjjkrcTbaaWCOQx7um6argv/gvpZ8slb2973YpkvuNX 0t0SYiH8eTab/TgM8pgKrp5g7rv1JBVOGcn1XMGK1W6KD5Ey0wUljKKihq7oAAug 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2740 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-01 06:51:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-03 18:34:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Baltimore' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Centers for Medicare & Medicaid Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OIS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.healthcare.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24611589411106902936419000494203842066030425932908631015101234458459661579080213798801560026433197167157044931286200031408480311307970647172209167533611613718677651170298419099472982763376933609672967902022408348102170457287766177940107665804037041690887297960836077485941020040437082918583954115922325976810446630896209744461430882327385468259679115633201071380457639724996344198921400187166102268250526926282143324323969130517722512839497219300006329240914198578291443028878456840336036473602606191371310622979661184586345827973446014489874770596871702503938486554641451115226737815386968020360677494578562034540781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ac32ed5ac9e0de309c9058552663f672a6545fe3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gw.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gw.symcb.com/gw.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1296 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.aws.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.stopmedicarefraud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stopmedicarefraud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stopmedicarefraud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cciio.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cciio.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'partnershippledge.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hospitalcompare.hhs.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hospitalcompare.hhs.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pcip.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pcip.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'errp.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.errp.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'go.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maps.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wr.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmdsmdr.aws.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmdsm.aws.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ahrcvo.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ahrc.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eap.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ratereview.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'openpaymentsdata.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nagios.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'billing.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'github.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'splunk.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofile.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'splunk.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'signup.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reminder.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prodprime.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prodprime.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marketplace.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jira.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hfpp.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eidm.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'downloads.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'developer.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confluence.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'styleguide.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hipchat.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crowd.cms.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthcare.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gw.symcb.com/gw.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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